top of page

Datenschutzrichtlinie

We ("we," "us," "our") take the protection of users' data ("users" or "you") of our website very seriously and are committed to safeguarding the information that users provide to us in connection with the use of our website ("digital assets"). Furthermore, we are committed to protecting and using your data to the best of our knowledge and belief, in accordance with applicable law.

This privacy policy explains our practices regarding the collection, use, and disclosure of your data through the use of our digital assets (the "services") when you access the services from your devices.

Please read this privacy policy carefully and ensure that you fully understand our practices regarding your data before using our services. If you have read and fully understood this policy and do not agree with our practices, you must cease using our digital assets and services. By using our services, you acknowledge the terms of this privacy policy. Continued use of the services constitutes your consent to this privacy policy and any changes thereto.

In this privacy policy, you will learn:

• How we collect data

• What data we collect

• Why we collect this data

• To whom we disclose the data

• Where the data is stored

• How long the data is retained

• How we protect the data

• How we handle minors

• Updates or changes to the privacy policy

What Data Do We Collect?

Below is an overview of the data we may collect:

• Unidentified and non-identifiable information that you provide during the registration process or that is collected through the use of our services ("non-personal data"). Non-personal data does not allow us to trace the information back to the individual from whom it was collected. Non-personal data that we collect consists mainly of technical and aggregated usage information.

• Individually identifiable information, i.e., any information that can identify you or that could reasonably be used to identify you ("personal data"). Personal data that we collect through our services may include information that is requested from time to time, such as names, email addresses, addresses, phone numbers, IP addresses, and more. If we combine personal data with non-personal data, the combined data will be treated as personal data for as long as it remains combined.

How Do We Collect Data?

Below are the main methods we use to collect data:

• We collect data through your use of our services. When you visit our digital assets and use the services, we may collect, record, and store usage, sessions, and related information.

• We collect data that you provide to us voluntarily, for example, when you contact us directly via any communication channel (e.g., an email with a comment or feedback).

• As described below, we may collect data from third-party sources.

• We collect data that you provide to us when you log in to our services via a third-party provider such as Facebook or Google.

 

Why Do We Collect This Data?

We may use your data for the following purposes:

• To provide and operate our services;

• To develop, customize, and improve our services;

• To respond to your feedback, inquiries, and requests, and to offer assistance;

• To analyze demand and usage patterns;

• For other internal, statistical, and research purposes;

• To enhance our data security and fraud prevention capabilities;

• To investigate violations and enforce our terms and policies, and to comply with applicable law, regulations, or governmental orders; • To send you updates, notices, promotional materials, and other information related to our services. For promotional emails, you can choose whether or not you wish to continue receiving them. If you do not, simply click the unsubscribe link in those emails.

To Whom Do We Disclose This Data?

We may share your data with our service providers to operate our services (e.g., storing data through third-party hosting services, providing technical support, etc.).

We may also disclose your data under the following circumstances: (i) to investigate, detect, prevent, or take action against illegal activities or other misconduct; (ii) to establish or exercise our rights of defense; (iii) to protect our rights, property, or personal safety and the safety of our users or the public; (iv) in the event of a change of control at our company or one of our affiliates (through merger, acquisition, or purchase of substantially all assets, etc.); (v) to collect, hold, and/or manage your data through authorized third-party providers (e.g., cloud service providers) as reasonably necessary for business purposes; (vi) to work with third-party providers to improve your user experience. For the avoidance of doubt, we may transfer or disclose non-personal data to third parties at our discretion.

Cookies and Similar Technologies

When you visit or access our services, we authorize third parties to use web beacons, cookies, pixel tags, scripts, and other technologies and analytics services ("tracking technologies"). These tracking technologies may allow third parties to automatically collect your data to improve the navigation experience on our digital assets, optimize their performance, and ensure a tailored user experience, as well as for security and fraud prevention purposes.

To learn more, please read our Cookie Policy.

Without your consent, we will not share your email address or other personal data with advertising companies or advertising networks.

Where Do We Store the Data?

Non-Personal Data

Please note that our companies and our trusted partners and service providers are located around the world. For the purposes explained in this privacy policy, we store and process all non-personal data we collect in various jurisdictions.

Personal Data

Personal data may be maintained, processed, and stored in the United States, Ireland, South Korea, Taiwan, Israel, and other jurisdictions as necessary for the proper provision of our services and/or as required by law (as further explained below).

 

How Long Are the Data Retained?

Please note that we retain the collected data for as long as necessary to provide our services, to comply with our legal and contractual obligations to you, to resolve disputes, and to enforce our agreements. We may correct, supplement, or delete inaccurate or incomplete data at our discretion at any time.

How Do We Protect the Data?

The hosting service for our digital assets provides us with the online platform through which we offer our services to you. Your data may be stored through our hosting provider's data storage, databases, and general applications. It stores your data on secure servers behind a firewall and offers secure HTTPS access to most areas of its services.

All payment options offered by us and our hosting provider for our digital assets comply with the PCI-DSS (Payment Card Industry Data Security Standard) as managed by the PCI Security Standards Council. This is a collaboration between brands like Visa, MasterCard, American Express, and Discover. PCI-DSS requirements help ensure the secure handling of credit card data (including physical, electronic, and procedural measures) by our shop and service providers.

Despite the measures and efforts taken by us and our hosting provider, we cannot and do not guarantee absolute protection and absolute security of the data you upload, post, or otherwise share with us or others. For this reason, we ask that you set secure passwords and, if possible, avoid transmitting confidential information to us or others, the disclosure of which you believe could cause significant or lasting harm to you. Since email and instant messaging are not considered secure forms of communication, we also ask that you do not share any confidential information through these communication channels.

We use your personal data only for the purposes set out in the privacy policy and only when we believe that:

  • The use of your personal data is necessary to perform or enter into a contract (e.g., to provide you with the services themselves or customer support or technical support);

  • The use of your personal data is necessary to comply with relevant legal or regulatory obligations; or

  • The use of your personal data is necessary to support our legitimate business interests (provided that this is done in a manner that is proportionate and respects your privacy rights at all times).

As an EU resident, you can:

  • Request confirmation as to whether personal data concerning you is being processed and access your stored personal data along with certain supplementary information;

  • Request to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format;

  • Request the correction of your personal data stored by us;

  • Request the deletion of your personal data;

  • Object to the processing of your personal data by us;

  • Request the restriction of the processing of your personal data; or

  • Lodge a complaint with a supervisory authority.

Please note, however, that these rights are not absolute and may be subject to our own legitimate interests and regulatory requirements. If you have general questions about the personal data we collect and how we use it, please contact us as indicated below.

In the course of providing the services, we may transfer data across borders to affiliated companies or other third parties and from your country/jurisdiction to other countries/jurisdictions around the world. By using the services, you consent to your data being transferred outside of the EEA.

If you are located in the EEA, your personal data will only be transferred to locations outside the EEA when we believe that an adequate or comparable level of protection for personal data is ensured. We will take appropriate steps to ensure that we have suitable contractual arrangements with our third parties to guarantee that appropriate safeguards are in place to minimize the risk of unauthorized use, alteration, deletion, loss, or theft of your personal data, and that these third parties act in accordance with applicable laws at all times.

We do not sell users' personal data for the purposes and intents of the CCPA.

Updates or Changes to the Privacy Policy

We may revise this privacy policy from time to time at our sole discretion, and the version posted on the website is always the current version (see the "last updated" statement). We encourage you to review this privacy policy regularly for any changes. If there are significant changes, we will post a notice on our website. Your continued use of the services after notification of changes on our website constitutes your acknowledgment and agreement to the changes to the privacy policy and your agreement to be bound by the terms of those changes.

Contact

If you have general questions about the services or the data we collect about you and how we use it, please contact us at:

Name: Maria Tolstunova
Address: Kellermanngasse 8/7, 1070 Vienna
E-Mail Address: info@mashrooom.com

bottom of page